persona-researcher
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes external research papers and notes while maintaining significant write and communication capabilities.
- Ingestion points: Research papers and notes stored within Google Drive folders are ingested for summarization and organization.
- Boundary markers: The instructions lack explicit boundary markers or directives to ignore instructions embedded within the processed research materials.
- Capability inventory: The skill has the capability to write Google Docs, append data to Google Sheets, and send emails via Gmail through its required utility skills.
- Sanitization: No content sanitization or validation is performed on the data ingested from external research documents.
Audit Metadata